diff --git a/refpolicy/policy/modules/kernel/kernel.if b/refpolicy/policy/modules/kernel/kernel.if
index 0ed2dc53..77f40374 100644
--- a/refpolicy/policy/modules/kernel/kernel.if
+++ b/refpolicy/policy/modules/kernel/kernel.if
@@ -497,6 +497,7 @@ define(`kernel_read_device_sysctl',`
 requires_block_template(kernel_read_device_sysctl_depend,$2)
 allow $1 proc_t:dir search;
 allow $1 sysctl_t:dir { getattr search read };
+allow $1 sysctl_dev_t:dir { getattr search read };
 allow $1 sysctl_dev_t:file { getattr read };
 ')